CNNVD-202512-4048 Information

CNNVD ID

CNNVD-202512-4048

Related CVE

CVE-2025-14420

• CNNVD Published: 2025-12-23

Description (Chinese)

Pdfforge Pdf Architect是Pdfforge公司的一套用于查看、编辑PDF文档的解决方案。 Pdfforge Pdf Architect存在路径遍历漏洞，该漏洞源于解析CBZ文件时，在文件操作前缺乏对用户提供路径的适当验证，可能导致目录遍历和远程代码执行。

Description (English)

Pdfforge Pdf Architect is a Pdfforge solution for viewing and editing PDF files. Pdfforge Pdf Architect has a loophole in the path, which results from a lack of proper validation of the user ’ s path before the CBZ file is deciphered, which may lead to directory history and remote code execution.

Hazard Level

Medium

Vulnerability Type

路径遍历

Affected Vendor

Pdfforge

Published

2025-12-23

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-1077/